Author: Discerning Data Editorial Board

OMB Releases Report on Federal Cybersecurity Risk

Share

This is the first post in a DBR on Data series on Executive Order 13800 and updates on its implementation a year after passage.

The White House Office of Management and Budget (OMB) released in May 2018 its report to the president on federal cybersecurity risk determination. The report, which responds to the President’s May 2017 Executive Order 13800, entitled “Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure,” comes as several key reports also required by Executive Order 13800 have been recently released in full or in summary form. The Federal Cybersecurity Risk Determination Report and Action Plan concludes that the recent government-wide cybersecurity risk assessment conducted by the OMB, in collaboration with the Department of Homeland Security (DHS), confirms the need for the U.S. government to take “bold approaches” to improve federal cybersecurity.

Continue reading “OMB Releases Report on Federal Cybersecurity Risk”

FTC Staff Provides Recommendations to Consumer Product Safety Commission on IoT Safety

Share

In March 2018, the Consumer Product Safety Commission (CPSC) issued a Notice of Public Hearing and Request for Written comments on The Internet of Things on Consumer Product Hazards.  The CPSC expressed interest regarding existing safety standards on existing IoT devices, how to prevent hazards, and the role of government in the effort to promote IoT safety.

Continue reading “FTC Staff Provides Recommendations to Consumer Product Safety Commission on IoT Safety”

$4 Million Judgment Awarded to Office for Civil Rights for HIPAA Violation

Share

A U.S. Department of Health and Human Services (HHS) Administrative Law Judge (ALJ) has ruled that the University of Texas MD Anderson Cancer Center violated the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in its failure to encrypt its electronic devices and ordered MD Anderson to pay $4,348,000 in civil monetary penalties  to the Office for Civil Rights (OCR). This is the second summary judgment ordered in favor of the OCR in its history, and the fourth largest amount recovered by OCR for HIPAA violations.

Continue reading “$4 Million Judgment Awarded to Office for Civil Rights for HIPAA Violation”

FTC Gives Final Approval to PayPal Settlement Related to Allegations Involving its Venmo Payment Service

Share

The FTC gave final approval to the Venmo/PayPal settlement resolving alleged violations of Section 5 of the FTC Act and the Gramm-Leach-Bliley Act’s Privacy and Safeguards Rules. As described in a previous blog post, the FTC alleged that Venmo made a variety of misrepresentations to consumers with respect to the availability of funds, the ability of consumers to control the privacy of their transactions, and its data security practices. Continue reading “FTC Gives Final Approval to PayPal Settlement Related to Allegations Involving its Venmo Payment Service”

Eleventh Circuit Vacates FTC LabMD Order but Does Not Challenge FTC Authority

Share

The U.S. Circuit Court of Appeals for the 11th Circuit vacated the LabMD Federal Trade Commission order but did not challenge the Commission’s ability to use its unfairness authority to challenge inadequate data security practices in  a closely watched case that tested the commission’s enforcement powers.

Continue reading “Eleventh Circuit Vacates FTC LabMD Order but Does Not Challenge FTC Authority”

Vermont First State to Pass Data Broker Law

Share

Vermont lawmakers recently passed a first-of-its-kind data broker law, which protects consumers from credit freeze fees, data fraud and clarifies data security requirements.

Continue reading “Vermont First State to Pass Data Broker Law”

©2025 Faegre Drinker Biddle & Reath LLP. All Rights Reserved. Attorney Advertising.
Privacy Policy